Compliance Guide for Supply Chain Security within NIS2

As a  NIS2 covered organization, the responsibility – and the bill – is passed on  to you if your IT suppliers are not robust against cyberattacks. You should  therefore have contractual requirements for your suppliers to ensure adequate  supply chain security. But supply chain security is about more than that. For effective supplier management under NIS2, you need to ensure, among other things:
   

• Regular risk assessments
• Management of security incidents
• Implementing security requirements in the contract with the supplier

Yes, it’s a juggling job that awaits you. But using this guide will get you off to a good start – and on track – with NIS2 compliance in your supply chain. It provides a checklist that you can customize for each of your IT suppliers.